fix(rsync): move brontes to modules and fix missed renames

2024-10-13 23:53:45 +02:00 · 2024-10-13 23:53:45 +02:00 · b8c7300e8a
commit b8c7300e8a
parent 169ada30f6
4 changed files with 28 additions and 49 deletions
--- a/README.md
+++ b/README.md
@ -1,11 +1,13 @@
 ## Targets
-| Name    | Arch   | Description |
+| Name    | Arch    | Description                              |
-| ------- | ------ | ----------- |
+| ------- | ------- | ---------------------------------------- |
-| Marr    | x86_64 |             |
+| marr    | x86_64  | Laptop Workstation                       |
-| Brontes | x86_64 |             |
+| brontes | x86_64  | Desktop Workstation                      |
-| Styrax  | x86_64 |             |
+| styrax  | x86_64  |                                          |
 | raptus  | x86_64  |                                          |
 | nihilus | aarch64 | Small Pi used to make "off-site" backups |
-## Thanks to these awesome people for inspiration and documentation:
+## Thanks to these people for inspiration and documentation:
 - https://github.com/notashelf/nyx
--- a/hosts/brontes/configuration.nix
+++ b/hosts/brontes/configuration.nix
@ -47,16 +47,19 @@
      };
      rsync-backup = {
        enable = true;
-        sources = [ "/home/ny/notes" ];
+        modules = [
-        target = {
+          {
-          location = "brontes-backup";
+            sources = [ "/home/ny/notes" ];
-          type = "rsyncd";
+            target = {
-          host = "nihilus";
+              location = "brontes-backup";
-        };
+              type = "rsyncd";
-        incremental.enable = true;
+              host = "nihilus";
            };
            incremental.enable = true;
          }
        ];
      };
    };
    media.enableAll = true;
  };
--- a/hosts/raptus/headscale.nix
+++ b/hosts/raptus/headscale.nix
@ -143,16 +143,14 @@ mkIf config.services.headscale.enable {
    name = "headscale-acl.hujson";
    text = builtins.toJSON {
      acls = [
-        (mkAcl [ "tag:client" ] [ "tag:client:*" ]) # client -> client
+        (mkAcl [ "tag:client" ] [
-        (mkAcl [ "tag:client" ] [ "tag:server:*" ]) # client -> server
+          "tag:client:*"
-        {
+          "tag:server:*"
-          action = "accept";
+        ]) # client -> {client, server}
-          src = [
+        (mkAcl [
-            "tag:client"
+          "tag:client"
-            "tag:server"
+          "tag:server"
-          ];
+        ] [ "tag:backup:${toString options.modules.server.rsync-daemon.port.default}" ])
          dst = [ "tag:backup:${toString options.modules.services.rsync-daemon.port.default}" ];
        }
      ];
      ssh = [
--- a/options/services/rsync-backup/default.nix
+++ b/options/services/rsync-backup/default.nix
@ -83,21 +83,9 @@ in
      default = "rsync-backup";
    };
    user = mkOption {
      type = str;
      default = "rsync-backup";
      description = "User account under which Rsync runs.";
    };
    group = mkOption {
      type = str;
      default = "rsync-backup";
      description = "Group under which Rsync runs.";
    };
    port = mkOption {
      type = port;
-      default = options.modules.services.rsync-daemon.port.default;
+      default = options.modules.server.rsync-daemon.port.default;
    };
  };
@ -160,17 +148,5 @@ in
        };
      }) cfg.modules
    );
    users.users = mkIf (cfg.user == "rsync-backup") {
      rsync-backup = {
        useDefaultShell = true;
        group = cfg.group;
        isSystemUser = true;
      };
    };
    users.groups = mkIf (cfg.group == "rsync-backup") {
      rsync-backup = { };
    };
  };
 }